Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.forexyestrading-course.info/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.forexyestrading-course.info Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 29 Aug 2014 08:40:20 GMT Location: http://46.161.41.152/sds/go.php?sid=1 Server: Apache Content-Length: 245 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://46.161.41.152/sds/go.php?sid=1 (imitation of visitor from search engine) GET /sds/go.php?sid=1 HTTP/1.1 Host: 46.161.41.152 Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Fri, 29 Aug 2014 08:40:26 GMT Referer: http://www.google.com/url?sa=t&rct=j&q=www.forexyestrading-course.info&source=web&cd=1&ved=0CDEQFjAG&url=http:%2F%2Fwww.forexyestrading-course.info%2F&ei=wC7yT5qCJbCCkQKtnwE&usg=AFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg Location: http://doctorsro.com/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Set-Cookie: schema1=true; expires=Fri, 05-Sep-2014 08:40:26 GMT Set-Cookie: visited1=1; expires=Fri, 05-Sep-2014 08:40:26 GMT X-Powered-By: PHP/5.4.4-14+deb7u14 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://www.forexyestrading-course.info/ | 200 OK Content-Length: 11728 Content-Type: text/html | clean |
http://www.forexyestrading-course.info/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 308 Content-Type: application/javascript | clean |
http://www.forexyestrading-course.info/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://www.forexyestrading-course.info/wp-content/themes/visionary/js/jquery.js | 200 OK Content-Length: 54075 Content-Type: application/javascript | clean |
http://www.forexyestrading-course.info/wp-content/themes/visionary/js/jquery.innerfade.js | 200 OK Content-Length: 4926 Content-Type: application/javascript | clean |
http://www.forexyestrading-course.info/forex-broker/ | HTTP/1.1 302 Found Connection: close Date: Fri, 29 Aug 2014 08:40:21 GMT Location: http://46.161.41.152/sds/go.php?sid=1 Server: Apache Content-Length: 221 Content-Type: text/html; charset=iso-8859-1 | clean |
http://46.161.41.152/sds/go.php?sid=1 | HTTP/1.1 302 Found Connection: close Date: Fri, 29 Aug 2014 08:40:27 GMT Referer: Location: http://doctorsro.com/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Set-Cookie: schema1=true; expires=Fri, 05-Sep-2014 08:40:27 GMT Set-Cookie: visited1=1; expires=Fri, 05-Sep-2014 08:40:27 GMT X-Powered-By: PHP/5.4.4-14+deb7u14 | clean |
http://doctorsro.com/ | 500 Server closed connection without sending any data back Content-Length: 105 Content-Type: text/plain | clean |
http://doctorsro.com/test404page.js | 500 Server closed connection without sending any data back Content-Length: 105 Content-Type: text/plain | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=forexyestrading-course.info
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://forexyestrading-course.info/
Result: forexyestrading-course.info is not infected or malware details are not published yet.
Result: forexyestrading-course.info is not infected or malware details are not published yet.